Alert: Microsoft Security Bulletin MS04-042 - Vulnerability in DHCP Could Allow Remote Code Execution and Denial of Service (885249)

• Previous message: Russ Cooper: "Alert: Microsoft Security Bulletin MS04-041 - Vulnerability in WordPad Could Allow Code Execution (885836)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date:         Tue, 14 Dec 2004 13:26:26 -0500
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

Microsoft Security Bulletin MS04-042:
Vulnerability in DHCP Could Allow Remote Code Execution and Denial of Service (885249)

Bulletin URL:
<http://www.microsoft.com/technet/security/bulletin/MS04-042.mspx>

Version Number: 1.0
Issued Date: Tuesday, December 14, 2004
Impact of Vulnerability: Remote Code Execution
Maximum Severity Rating: Important
Patch(es) Replaced: None
Caveats: None

Tested Software:
Affected Software:
------------------
* Microsoft Windows NT Server 4.0 Service Pack 6a
<http://tinyurl.com/45tvp>
* Microsoft Windows NT Server 4.0 Terminal Server Edition Service Pack 6
<http://tinyurl.com/6rejs>

Technical Description:
----------------------
* Logging Vulnerability - CAN-2004-0899: A denial of service vulnerability exists that could allow an attacker to send a specially crafted DHCP message to a DHCP server. An attacker could cause the DHCP Server service to stop responding.

* DHCP Request Vulnerability - CAN-2004-0900: A remote code execution vulnerability exists that could allow an attacker to send a specially crafted DHCP message to a DHCP server. However, attempts to exploit this vulnerability would most likely result in a denial of service of the DHCP Server service.

This email is sent to NTBugtraq automagically as a service to my subscribers. (v4.01.1796.25439)

Cheers,
Russ - Senior Scientist - TruSecure Corporation/NTBugtraq Editor

--
Editor's Note: The 43rd Most Powerful Person in Networking says...
Register today to take the TruSecure ICSA exam by 12/31/04  at
<http://www.2test.com> ,  use promo code "CT1204" and you will pay just
$221.25 US Dollars for domestic exam delivery and  $296.25 US Dollars
for international delivery.
Visit <https://ticsa.trusecure.com>  for complete details regarding the
TICSA credential and to take the free sample exam.
--

• Previous message: Russ Cooper: "Alert: Microsoft Security Bulletin MS04-041 - Vulnerability in WordPad Could Allow Code Execution (885836)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages SecurityFocus Microsoft Newsletter # 150 ... - automatically set positive security policies for real-time protection, ... MICROSOFT VULNERABILITY SUMMARY ... Meteor FTP Server USER Memory Corruption Vulnerability ... MDaemon SMTP Server Null Password Authentication Vulnerabili... ... (Focus-Microsoft) SecurityFocus Microsoft Newsletter #142 ... MICROSOFT VULNERABILITY SUMMARY ... Mollensoft Enceladus Server Suite Clear Text Password Storage... ... FakeBO Syslog Format String Vulnerability ... Methodus 3 Web Server File Disclosure Vulnerability ... (Focus-Microsoft) SecurityFocus Microsoft Newsletter #76 ... MICROSOFT VULNERABILITY SUMMARY ... Working Resources BadBlue Cross Site Scripting Vulnerability ... Microsoft Commerce Server 2000 ISAPI Buffer Overflow Vulnerability ... Essentia Web Server Long URL Denial Of Service Vulnerability ... (Focus-Microsoft) SecurityFocus Microsoft Newsletter #99 ... MICROSOFT VULNERABILITY SUMMARY ... Multiple Microsoft Content Management Server 2001 Vulnerabilities ... Microsoft Windows 2000 Insecure Default File Permissions... ... ArGoSoft Mail Server Pro Mail Loop Denial of Service Vulnerability ... (Focus-Microsoft) SecurityFocus Microsoft Newsletter #159 ... The newest web app vulnerability... ... MICROSOFT VULNERABILITY SUMMARY ... Rit Research Labs TinyWeb Server Remote Denial of Service Vu... ... mIRC DCC SEND Buffer Overflow Vulnerability ... (Focus-Microsoft)